Код: Выделить всё
# Nova/23/2018 22:49:27 by RouterOS 6.43.4
# software id =
#
# model = RouterBOARD 952Ui-5ac2nD
# serial number =
/interface bridge
add fast-forward=no name=bridge-lan
/ip photspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=dhcp-pool ranges=192.168.10.100-192.168.10.200
/ip dhcp-server
add address-pool=dhcp-pool disabled=no interface=bridge-lan lease-time=12h10m \
name=dhcp-server
/interface pptp-client
add add-default-route=yes connect-to=*.*.*.243 name=PPTP password=\
password profile=default user=login
/interface bridge port
add bridge=bridge-lan hw=no interface=ether2
add bridge=bridge-lan hw=no interface=ether3
add bridge=bridge-lan interface=ether4
add bridge=bridge-lan hw=no interface=ether5
/ip neighbor discovery-settings
set discover-interface-list=none
/ip address
add address=*.*.*.75/24 interface=ether1 network=*.*.*.0
add address=192.168.10.1/24 interface=bridge-lan network=192.168.10.0
/ip dhcp-server network
add address=192.168.10.0/24 dns-server=192.168.10.1 gateway=192.168.10.1 \
netmask=24
/ip dns
set allow-remote-requests=yes servers=208.67.222.222,208.67.222.220
/ip firewall filter
add chain=input protocol=icmp
add action=accept chain=input connection-state=new dst-port=80,8291,22 \
in-interface=bridge-lan protocol=tcp src-address=192.168.10.0/24
add action=accept chain=input connection-state=new protocol=udp src-address=\
192.168.10.0/24 src-port=53,123
add action=accept chain=input connection-state=established,related
add action=accept chain=output connection-state=!invalid connection-type=""
# PPTP not ready
add action=accept chain=forward connection-state=established,new in-interface=\
bridge-lan out-interface=PPTP src-address=192.168.10.0/24
# PPTP not ready
add action=accept chain=forward connection-state=established,related \
in-interface=PPTP out-interface=bridge-lan
add action=drop chain=forward
add action=drop chain=input
add action=drop chain=output
/ip firewall nat
# no interface
add action=masquerade chain=srcnat out-interface=PPTP src-address=192.168.10.0/24
/ip route
add check-gateway=ping distance=1 gateway=*.*.*.1
/system routerboard settings
set silent-boot=no